Risk Assurance Events Around the United States

Throughout the year, PwC professionals host and participate in various events, including conferences and issue-focused webcasts around the country. Please use the map below to select your location to see upcoming events and PwC contact information for your local market.

PwC Conference Sponsorships and Speaker Sessions

Attending any of these events? Please be sure to connect with our PwC practitioners to see if they will be attending and don't forget to register to attend our speaking sessions. Visit our exhibition booth, if applicable, to connect with our thought leaders, see our latest demonstrations and learn how we can help your company address your internal audit needs and the challenges you may be facing regarding risk and compliance issues.

Archived webcasts:

In this webcast we shared the results of PwC’s Business Continuity Management Insights Survey, "Getting tactical - Improving enterprise resiliency with GRC technology." A PwC panel of business continuity and GRC technology leaders discussed the survey results and provided insight on how companies can manage and integrate GRC technology solutions to improve and manage enterprise resiliency. This webcast complements the recently released publication in PwC's Business Continuity Management Insights series, titled Getting tactical - Improving enterprise resiliency with GRC technology, which shares our perspective on the effective use of GRC technologies to enable enterprise resiliency.

The webcast provided analysis of the results from PwC’s 5th Annual State of Compliance Survey. This year’s survey was designed to provide our clients with insight into the current challenges faced by Chief Compliance Officers, this year’s report explores how they can expand their roles to become further partners to the business and contribute more actively to the organization’s strategy and direction. PwC received 1,102 responses from compliance executives to our 2015 survey -- continuing to prove an increased focus on compliance as a function and a growing interest in the topic as a whole.

The speakers discussed the 5 key themes of this year's survey report, “Moving beyond the baseline: Leveraging compliance to gain competitive advantage”. Insights focused on the current challenges that chief compliance officers and chief ethics and compliance officers (collectively, CCOs) face and how they can expand their roles to become partners to the business, contributing actively to the organization’s strategy and direction.

An unprecedented wave of privacy fines, penalties, and settlements has thrust data privacy onto the agenda of corporate boards across all sectors and regions. US courts and regulators imposed more than $800 million in data privacy fines and penalties in 2014, shattering 2013's record tally of $74 million across all jurisdictions worldwide. Meanwhile, a landmark case in the UK has opened the floodgates for privacy class-action lawsuits even as a similar trend is unfolding in Canada, and other countries scramble to build up their own privacy-enforcement arsenals. But what are the control failures generating these losses, and how are executive leadership teams reacting?

This webcast covers:

Detailed statistics on PwC's research on these cases and their root causes

The broad impacts of PHI: Addressing the demands of customers and regulators
May 28, 2015

Any company that plays a role in the healthcare delivery system is subject to compliance with HIPAA and state regulations. This webcast explores how these compliance requirements have increased the need for additional assurance over the protection of sensitive data.

PwC’s Michael Parisi, Kenneth Mortensen, and Adrian Christie, along with Dorina Hamzo, Senior Manager Internal Controls, of athenahealth to talk about the latest privacy, security, and third party reporting trends impacting organizations that operate in the healthcare spectrum. Specifically, this webcast covers:

An overview of the HIPAA Rules and recent changes that have increased the number of organizations impacted by the regulation

New enforcement and related penalties

The role of the Department of Health and Human Services’ Office for Civil Rights (OCR), its ongoing Audit Program, and how best to prepare for and respond to an audit or order

How to address the demands of customers and regulators through independent assurance and reporting, including HITRUST Certifications, Agreed Upon Procedures (AUPs), Customized AT-101s and SOC2s

How independent assurance reports can be incorporated into third party risk management programs

Your journals are at Risk! Close loopholes that allow users to circumvent manual journal controls
May 12, 2015

Did you know that your users may be creating manual journals that can bypass your preventative and detective manual journal controls? And the fact that these journals are “hidden,” stealthily looking exactly like system created journals that nobody notices or questions, makes this issue even more challenging. This can open up the potential for fraud or allow users to inadvertently circumvent manual journal controls – both of which can be damaging to your organization.

Mike Baccala, Stephen D’Arcy, and Jon Hansen from PwC’s Oracle Security & Controls practice discuss these risks and what you can do to keep your manual journals aligned with your controls.

Specifically, this webcast covers:

How users are able to create manual journals that look like system generated journals

How organizations can close the loopholes that allow users to circumvent manual journal controls

Access request in high gear: How one-stop-shop business roles can help accelerate user provisioning in SAP
April 30, 2015

Multiple request forms, help desk calls, even a fax just for SAP access?! Does your organization struggle with multiple, manual, or confusing processes to manage SAP access requests across your landscape? Increasingly, organizations are looking to establish a simple, compliant, approach to accelerate user access provisioning by leveraging business roles within SAP GRC.

PwC's Jamie Draper, Langdon King, and Nathan Levitt discuss a business role design methodology including strategic, risk, and technology considerations when implementing business roles.

Specifically, this webcast covers:

How to leverage an organizations’ GRC & Identity Management (IDM) technologies to align business role design to broader Role Based Access Controls (RBAC) initiatives

The intersection of business role design & HR to further streamline and accelerate access provisioning

2015 State of the Internal Audit Profession Webcast: Finding True North in a Period of Rapid Transformation
April 1, 2015

This webcast provides an in-depth look at the latest trends and themes presented in our 2015 State of the Internal Audit Profession Study, and our perspectives on the continued evolution of the profession.

PwC’s Jason Pett, Rachael Person, and Monica Nayar, and industry guest James Tietjen, from Capital One Financial Corporation, share their perspectives on Internal Audit, and how Internal Audit functions should strive to push beyond standard objectives and deliverables.

Specifically the webcast provides a perspective on the following areas and more:

Understanding how Internal Audit functions must evolve to meet the needs of ever changing and often transforming businesses

Providing insight on how Internal Audit must advance its capabilities and skills in order to contribute value

Looking closely at the growing importance of Data Analytics and strategies for advancing their use

Positioning Internal Audit to collaborate with other lines of defense to help strengthen overall risk management

Vendor Controls Attestation (SOC 2+) Webcast: What this means for US businesses
February 24, 2015

How much time does your organization dedicate to completing customer assessments? Some organizations spend upwards of $5M on customer assessments and on-site audits. Many service providers struggle to meet the demand for these requests. They put a strain on resources when effort is taken from the core business function and focused on completing these assessments and on-site audits. As the marketplace continues to increase focus on third party service providers, so does the likelihood that your business will be disrupted. Forward thinking vendors are taking a proactive approach to their customers’ demand for transparency.

Listen to PwC’s informative webcast on Vendor Controls Attestation (SOC 2+) which is a new approach to achieving assurance over vendor controls, eliminating the need for costly customer assessments. Todd Bialick, PwC's Third Party Assurance Leader and Jeff Trent PwC’s Vendor Controls Attestation Leader, hosted the webcast along with PwC’s Julianne Inozemcev and Shona Brady. They provided insight into a new industry-wide Vendor Controls Attestation framework (SOC 2+). This framework allows an independent, standardized assessment which can be shared with customers to meet their needs and save on the time and expense incurred with the questionnaire process.

The webcast focused on the following topics to help companies understand the purpose and benefits of the new Vendor Controls Attestation (SOC 2+).

Current methods used to achieve controls comfort over vendor operations and the related challenges

Overview of SOC 2+ and how it addresses the challenges of current methods

The SOC 2+ service approach

Key benefits of SOC 2+ to both vendors and customers

Key questions to consider when deciding if SOC 2+ is right for your organization

Significant Others: Risk and Rewards of Third Party Business Relationships
February 3, 2015

Third parties are often the partners that we rely on to help keep our businesses running. In today's environment, it's more important than ever for us to have a solid understanding of how our third party providers are organized and what safeguards they hold in place for their own operations.

PwC’s Lillian Borsa, Dan Morrison, and Dean Spitzer, and our panel of industry guests Joe Jurchak, from Synchrony Bank and Cory Notrica, from PepsiCo, address the risks and rewards associated with third party business relationships

Specifically, the webcast highlights areas including:

Drivers behind the increased focus on Third Party Business Relationships

Are you fully leveraging your existing SAP technology to automate your processes? Or are you limiting its use mainly for compliance initiatives? Establishing a GRC Roadmap can allow you to reduce the cost of your current processes and potentially improve your control environment. But do you know where to start? Do you know how to get the business buy in for the project or GRC technologies to support the program?

PwC's Jamie Draper, David Hodson, and Jonathan Levitt discuss leading practices in building a business case and a roadmap for your GRC program and technologies.

Specifically, the webcast will present techniques to help you:

Establish a business case for a controls optimization project and associated GRC technologies

Leverage leading practices to define a roadmap for your GRC program and determine where to start

How safe is your sensitive data? Many organizations are finding out the answer is “not very.” According to a recent PwC survey, 16% of large organizations reported knowing that outsiders had stolen their intellectual property or confidential data in the last year. PwC’s Jamie Draper, Peter Hobson, and Valerie Lichter discuss leading practices to classify, identify and protect sensitive data within SAP systems.

Specifically, this webcast covers:

How to identify different types of sensitive data, processes, or industry regulations that may pose risk

The European Data Protection Regulation: What this means for US businesses
November 4, 2014

The proposed General Data Protection Regulation, which is currently proceeding through the European legislature, would introduce widespread data protection changes and greatly increase financial sanctions for noncompliance. These changes are likely to raise significant challenges in regard to data protection compliance for all businesses (regardless of the location of their establishments) that operate or provide goods and services within the European Union (EU).

On this webcast, PwC's Data Protection and Privacy Leader Carolyn Holcomb, along with PwC Data Protection and Privacy Principal Jay Cline, discuss the changes the new law would introduce, its current status, and how US companies can prepare with distinguished lawyers, Stewart Room and James Castro-Edwards from PwC Legal LLP, based in London, England.

The following topics are discussed to help companies understand the main changes and prepare for the new regulation: